Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/ot2piZQAKsxXzJJtebOS4mi5tJ4.roa
File: ot2piZQAKsxXzJJtebOS4mi5tJ4.roa (raw, json)
Hash identifier: 8raRWJRCx1rJiTaMRtFc8oO2YA3hSknWEbtfkS1GbXA=
Subject key identifier: A2:DD:A9:89:94:00:2A:CC:57:CC:92:6D:79:B3:92:E2:68:B9:B4:9E
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019401165FEE9125CC09D268BF585AD32637
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/ot2piZQAKsxXzJJtebOS4mi5tJ4.roa
Signing time: Thu 26 Dec 2024 03:50:30 +0000
ROA not before: Thu 26 Dec 2024 03:50:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58349
IP address blocks: 178.216.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:01:16:5f:ee:91:25:cc:09:d2:68:bf:58:5a:d3:26:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Dec 26 03:50:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2dda98994002acc57cc926d79b392e268b9b49e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:fb:82:78:c8:00:a5:08:c6:07:54:90:62:
8b:87:e5:b2:13:b1:80:b9:15:ac:44:ee:0f:a6:61:
10:6a:cb:dd:e8:41:be:ea:85:82:66:a5:c7:56:22:
b7:91:c4:80:83:48:85:4b:60:bf:cd:58:09:c8:1a:
75:34:2c:f1:0f:ea:b2:ba:f0:b8:52:d7:c8:f1:c3:
8a:ef:a9:9d:4c:6b:46:1d:fd:98:2b:65:a1:fc:e8:
fc:d0:97:05:d9:8d:3c:57:8f:76:fd:89:d5:d7:72:
85:46:c8:9b:75:46:57:69:fa:da:ae:20:c3:ad:db:
e6:36:71:12:60:0a:3a:ff:4f:b5:60:b8:91:1b:e2:
c4:8e:d0:82:ad:1a:0a:f9:03:07:76:73:e3:dc:4d:
c9:da:44:ff:ad:fc:2b:42:a6:c6:6e:12:4f:ee:db:
be:56:7f:ef:00:1a:7d:2e:f4:07:da:24:d7:bd:b7:
3e:4d:d5:7e:df:25:6f:a8:7b:e7:21:8f:e3:d1:de:
ad:b9:53:ee:89:ed:e2:2b:6b:ec:c0:e9:b3:5c:1d:
5c:d3:37:f7:3b:3e:54:6f:79:12:21:42:c5:ac:87:
75:c0:24:d6:d2:04:5c:5b:5f:e3:ce:56:8c:f3:12:
ab:48:81:26:88:91:e5:86:ed:cb:e5:b8:4b:03:19:
a2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DD:A9:89:94:00:2A:CC:57:CC:92:6D:79:B3:92:E2:68:B9:B4:9E
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/ot2piZQAKsxXzJJtebOS4mi5tJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.175.0/24
Signature Algorithm: sha256WithRSAEncryption
00:42:ba:34:bd:72:e3:a0:c0:16:e5:3e:48:ea:36:88:5b:48:
9b:6b:5a:31:22:b2:ab:0b:d1:e9:a8:e0:99:9e:97:31:6a:e7:
af:5d:fe:b3:fb:39:3f:4d:a1:3e:dd:6f:24:7f:94:a5:81:1f:
a6:a4:ea:09:95:7f:41:a1:f3:cf:4c:5b:61:53:64:8c:9f:81:
4d:8d:48:46:2d:77:47:1d:44:d3:96:7d:53:19:a3:c6:45:7c:
71:97:ba:ab:5f:59:28:39:f9:c0:bd:49:86:d3:25:38:31:85:
9a:be:c5:fb:76:18:83:2e:3c:b7:3f:4e:20:49:1f:1b:9d:b1:
d9:f4:a4:71:e5:0c:cb:1d:22:f1:54:45:b3:54:27:78:5b:2c:
6c:e7:86:d4:e5:ac:36:10:31:aa:e5:e7:ca:6f:b3:4f:5f:0e:
9c:9c:e0:5e:3f:76:08:5c:f9:8b:4f:19:30:fd:b3:63:ee:6e:
30:27:8b:a6:97:c7:dd:13:5d:6f:59:3c:6e:4c:3f:ee:7a:bd:
d1:d7:b6:97:ef:40:be:89:89:e6:5a:43:b6:6e:f7:a0:0d:b2:
3b:2f:59:bd:56:96:ef:73:e0:20:3d:4e:5a:2a:fd:3e:01:ef:
b6:dd:44:3d:40:8f:c1:f3:c7:30:ed:07:02:a3:f1:c4:bd:a0:
b7:39:05:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:56:52 2025 by rpki-client